| Server IP : 80.87.202.40 / Your IP : 216.73.216.169 Web Server : Apache System : Linux rospirotorg.ru 5.14.0-539.el9.x86_64 #1 SMP PREEMPT_DYNAMIC Thu Dec 5 22:26:13 UTC 2024 x86_64 User : bitrix ( 600) PHP Version : 8.2.27 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /home/bitrix/ext_www/rospirotorg.ru/bitrix/modules/main/lib/engine/actionfilter/ |
Upload File : |
<?php
namespace Bitrix\Main\Engine\ActionFilter;
use Bitrix\Main\Context;
use Bitrix\Main\Error;
use Bitrix\Main\Event;
use Bitrix\Main\EventResult;
class Token extends Base
{
protected const ERROR_RESTRICTED_BY_SIGN_CHECK = 'restricted_by_sign';
/** @var string */
protected $entityHeaderName;
/** @var string */
protected $tokenHeaderName;
/** @var \Closure */
protected $getEntityClosure;
final public function __construct(\Closure $getEntityClosure)
{
$this->entityHeaderName = Service\Token::getEntityHeader();
$this->tokenHeaderName = Service\Token::getTokenHeader();
$this->getEntityClosure = $getEntityClosure;
parent::__construct();
}
final public function onBeforeAction(Event $event)
{
$entityValue = (string)Context::getCurrent()->getRequest()->getHeader($this->entityHeaderName);
$tokenValue = (string)Context::getCurrent()->getRequest()->getHeader($this->tokenHeaderName);
if (!$this->check($entityValue, $tokenValue))
{
Context::getCurrent()->getResponse()->setStatus(403);
$this->addError(new Error(
'Access restricted by sign check',
self::ERROR_RESTRICTED_BY_SIGN_CHECK
));
return new EventResult(EventResult::ERROR, null, null, $this);
}
return null;
}
protected function check(string $entityValue = '', string $tokenValue = ''): bool
{
global $USER;
$result = false;
try
{
$result = ($entityValue === (new Service\Token($USER->getId()))->unsign($tokenValue, ($this->getEntityClosure)()));
}
catch (\Exception $e)
{
}
return $result;
}
}